Cloudflare
Cloudflare
# values.yaml
provider: cloudflare
controller:
secrets:
name: "cloudflare-secrets"
keys:
- name: "CF_API_TOKEN"
key: "apiToken"
- name: "CF_ZONE_ID"
key: "zoneId"
To use Cloudflare as a provider, you’ll need to create an API token on their site and create a secret in your Kubernetes cluster. Phonebook expects the secret to live in the same namespace as the one running Phonebook’s controller.
kubectl create secrets generic cloudflare-secrets \
--namespace phonebook-system \
--from-literal=apiToken=${API_TOKEN} \
--from-literal=zoneId=${ZONE_ID} \
API Token
The API Token can be created by going to your Cloudflare’s profile page. Create a new token that will include the two permissions:
Zone.DNS
forAll Zones
Account.Cloudflare Tunnel
forAll Account
It’s possible to narrow down the zones and accounts to the specific one you want to use, but this is an exercise to the user. Once the API Token is created, you’ll need to create a secrets, like the one at the top of this page, that includes your API token as well as the zone id.